|
257021
|
5.5 |
MEDIUM
Local
|
file_project
|
file
|
An issue in file() was introduced in commit 9611f31313a93aa036389c5f3b15eea53510d4d1 (Oct 2016) lets an attacker overwrite a fixed 20 bytes stack buffer with a specially crafted .notes section in an …
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2017-1000249
|
2024-11-21 12:04 |
2017-09-12 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257022
|
7.8 |
HIGH
Local
|
gnome
debian
redhat
|
evince
debian_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_eus
enterprise_linux_server_…
|
backend/comics/comics-document.c (aka the comic book backend) in GNOME Evince before 3.24.1 allows remote attackers to execute arbitrary commands via a .cbt file that is a TAR archive containing a fi…
|
NVD-CWE-noinfo
|
CVE-2017-1000083
|
2024-11-21 12:04 |
2017-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257023
|
5.4 |
MEDIUM
Network
|
oracle
|
hospitality_inventory_management
|
Vulnerability in the Oracle Hospitality Inventory Management component of Oracle Hospitality Applications (subcomponent: Settings and Config). Supported versions that are affected are 8.5.1 and 9.0.0…
|
NVD-CWE-noinfo
|
CVE-2017-10002
|
2024-11-21 12:04 |
2017-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257024
|
7.6 |
HIGH
Network
|
oracle
|
hospitality_simphony
|
Vulnerability in the Oracle Hospitality Simphony First Edition component of Oracle Hospitality Applications (subcomponent: Core). The supported version that is affected is 1.7.1. Easily exploitable v…
|
NVD-CWE-noinfo
|
CVE-2017-10001
|
2024-11-21 12:04 |
2017-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257025
|
7.7 |
HIGH
Network
|
oracle
|
hospitality_reporting_and_analytics
|
Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Reporting). Supported versions that are affected are 8.5.1 and 9.0.0. Easil…
|
CWE-269
Improper Privilege Management
|
CVE-2017-10000
|
2024-11-21 12:04 |
2017-08-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257026
|
7.8 |
HIGH
Local
|
linux
debian
|
linux_kernel
debian_linux
|
Linux drivers/char/lp.c Out-of-Bounds Write. Due to a missing bounds check, and the fact that parport_ptr integer is static, a 'secure boot' kernel command line adversary (can happen due to bootloade…
|
CWE-787
Out-of-bounds Write
|
CVE-2017-1000363
|
2024-11-21 12:04 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257027
|
9.8 |
CRITICAL
Network
|
onosproject
|
onos
|
Linux foundation ONOS 1.9.0 is vulnerable to unauthenticated upload of applications (.oar) resulting in remote code execution.
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2017-1000081
|
2024-11-21 12:04 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257028
|
7.5 |
HIGH
Network
|
onosproject
|
onos
|
Linux foundation ONOS 1.9.0 allows unauthenticated use of websockets.
|
NVD-CWE-noinfo
|
CVE-2017-1000080
|
2024-11-21 12:04 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257029
|
7.5 |
HIGH
Network
|
onosproject
|
onos
|
Linux foundation ONOS 1.9.0 is vulnerable to a DoS.
|
NVD-CWE-noinfo
|
CVE-2017-1000079
|
2024-11-21 12:04 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
257030
|
6.1 |
MEDIUM
Network
|
onosproject
|
onos
|
Linux foundation ONOS 1.9 is vulnerable to XSS in the device. registration
|
CWE-79
Cross-site Scripting
|
CVE-2017-1000078
|
2024-11-21 12:04 |
2017-07-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
